Protection of Corporate Confidential Information from Cyberattacks with AI-powered Password and Privileged Account Management

ITOCHU Techno-Solutions Corporation (headquartered in Minato-ku, Tokyo; Tatsushi Shingu, President and CEO; hereinafter “CTC”) will start offering zero-trust, zero-knowledge enterprise password management (EPM) platform and privileged access management (KeeperPAM) solution from Keeper Security APAC KK (Asia-Pacific Headquarters in Minato-ku, Tokyo, Japan; Takanori Nishiyama, SVP of APAC Sales & Country Manager, Japan at Keeper Security, Inc.; hereinafter “Keeper”). In addition to enabling generation and storage of passwords used by employees more securely, the solutions monitor and analyze privileged accounts ^(*1) granted access to critical network resources such as servers, web applications, and databases. They also enforce access restrictions and password rotations, thereby enhancing security and reducing administrative burdens. We will offer the solutions primarily to financial institutions and government agencies, and aim to provide them to more than 150 organizations over the next three years.

Many cases of information leakages are caused by password reuses or weak passwords, and there is a growing need for frameworks that reduce the risk of information leakage through strict access permissions to identities and robust password management.

Keeper’s solutions are SaaS-based services designed to manage passwords and privileged accesses using zero-trust and zero-knowledge encryption models. The zero-knowledge encryption model is a security model that encrypts and decrypts user data at the device level, using a vault accessible only by the user to protect credentials such as passwords and certificates from threats. The service platform complies with multiple security certifications ^(*2) to safeguard corporate information under stringent security standards.

EPM assists users by automatically filling passwords, passkeys, and two-factor authentication (2FA) codes in websites and applications using AI-powered autofill function. It encrypts login ID, password, and legitimate access destination as a single piece of information and manages them like bookmarks, preventing input into unauthorized websites and achieving both convenience and security. This platform supports multi-layered defense approaches, including single sign-on (SSO) and multi-factor authentication (MFA), and can be integrated with on-premise and private cloud environments.

KeeperPAM monitors and analyzes privileged account accesses to network-connected services and databases in real time. It uses AI to learn unauthorized behaviors and anomalies and detect them in real time, sending alerts to administrators and recommending revocation of unnecessary access permissions. Additionally, it allows for automatic strong password generations and scheduled password rotations.

CTC offers a wide range of zero trust-enabled products and services, including EPM and KeeperPAM, and provides end-to-end support from deployment assistance to technical support and user training. We also continuously support customers after deployment to help them achieve zero-trust security. CTC and Keeper will continue our collaboration to contribute to strengthening corporate cybersecurity and drive their digital transformation.